Vulnerability Description
Unspecified vulnerability in appserv/main.php in AppServ 2.4.5 allows remote attackers to include arbitrary files via the appserv_root parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. There is not enough detail from these third party sources to know whether this is directory traversal, remote file include, or another issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Appserv Open Project | Appserv | 2.4.5 |
References
- http://secunia.com/advisories/18163Vendor Advisory
- http://www.osvdb.org/22228
- http://www.securityfocus.com/bid/16166
- http://www.vupen.com/english/advisories/2006/0053
- http://secunia.com/advisories/18163Vendor Advisory
- http://www.osvdb.org/22228
- http://www.securityfocus.com/bid/16166
- http://www.vupen.com/english/advisories/2006/0053
FAQ
What is CVE-2006-0125?
CVE-2006-0125 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in appserv/main.php in AppServ 2.4.5 allows remote attackers to include arbitrary files via the appserv_root parameter. NOTE: the provenance of this information is unknown; ...
How severe is CVE-2006-0125?
CVE-2006-0125 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0125?
Check the references section above for vendor advisories and patch information. Affected products include: Appserv Open Project Appserv.